Yesterday one of our customers error log grew to 13Gb because of exploit found in PHP code. As a result that cluster node became full causing problems on the VM. I'm trying to find out how to prevent such behavior in the future. Any ideas, any1?